Amendments to the Claims 



1 . (currently amended) A method of[[for]] transmitting secured data 
ov e r a w i r ele ss li nk , the method comprising: 

utilizing a first key to encrypt e ncrypt i ng a payload accord i ng to a f i rst 
s e ss i on k e y ; 

adding a header to the encrypted payload to form a data packet; 

utilizing a second key to encrypt e ncrypt i ng the first s e ss i on key; 

utilizing a third key to encrypt e ncrypt i ng the data packet accord i ng to a 
s e cond s e ss i on k e y ; 

transmitting the encrypted first s e ss i on key to a wireline device , wherein 
the wireline device decrypts the encrypted first kev ;[[ and]] 

transmitting the encrypted data packet over a wireless link to a gateway^ 
wherein the gateway [[which]1 decrypts the encrypted data packet to recreate d,]] 
r e cr e at e s the encrypted payload and the header, and forwards the encrypted 
payload and the header to the wireline device over an open network ; and 

utilizing the wireline device and the first key to decrypt the encrypted 
payload . 

2. (currently amended) The method of claim 1 , wherein the first 
s e ss i on key comprises frusesll a symmetric key. 

3. (currently amended) The method of claim 1 , further comprising: 
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r e c ei v i ng th e e ncrypt e d f i rst s e ss i on k e y and th e e ncrypt e d pay l oad at th e 
w i r eli n e d e v i c e ; 

d e crypt i ng th e e ncrypt e d f i rst s e ss i on k e y; and 

d e crypt i ng th e e ncrypt e d pay l oad us i ng th e d e crypt e d f i rst s e ss i on k e y- 
transmitting the encrypted first key to the wireline device, wherein the 

wireline device decrypts the encrypted first key using a private key associated 

with the second key. 

4. (currently amended) The method of claim 1 , wherein the third 
s e cond s e ss i on key comprises ffusesll a symmetric session key. 

5. (canceled). 

6. (currently amended) A device for transmitting secured data over a 
wireless link to a gat e way prov i d i ng acc e ss to a w i d e ar e a n e twork; , the device 
comprising: 

an encryption engine which generates a first s e ss i on key, encrypts a 
payload according to the[[a]] first s e ss i on key, adds a header to the encrypted 
payload to form a data packet, encrypts the first s e ss i on key according to a 
second kev, [[;11 and encrypts the data packet according to a third s e cond s e ss i on 
key; and 

a wireless transceiver coupled to the encryption engine , the wireless 
transceiver transmitting wh i ch transm i ts the encrypted first s e ss i on key to a 



M-11702 US 

Examiner: Teslovich, T. 



-3- 



Serial No.: 09/927,928 
Group Art Unit: 2137 



server and transmitting transm i ts the encrypted data packet over the[[a]] wireless 
link to a gateway , wherein the gatewav ffwhichll decrypts the encrypted data 
packet to recreate , r e cr e at e s the encrypted payload and the header, and 
forwards the encrypted payload and the header to the[[a]] server over an open 
network; 

wherein the server decrypts the encrypted first key and decrypts the 
encrypted payload using the decrypted first key . 

7. (canceled). 

8. (currently amended) The device of claim 6, wherein the payload 
comprises location information regarding a location of the w i r ele ss device. 

9. (currently amended) The device of claim 6, wherein the first key 
e ncrypt i on a l gor i thm employs a symmetric key. 

10. (currently amended) A method for secured communication 
between a mobile device and a server on a wide area network, the method 
comprising: 

encrypting a payload at the mobile device using a first session key; 
encrypting the an un e ncrypt e d first session key at the mobile device using 
a public key ; 

transmitting the encrypted first session key to the server over a wireless 
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link; 

decrypting the encrypted first session key at the server; 
e ncrypt i ng a pay l oad at th e mob ile d e v i c e us i ng th e un e ncrypt e d f i rst 
s e ss i on k e y; 

adding a header to the encrypted payload to form a data packet at the 
mobile device; 

encrypting the data packet according to a second session key configured 
for secured communications over the wireless link; and 

transmitting the encrypted data packet from the mobile device to a 
gateway which decrypts the encrypted data packet to recreate , r e cr e at e s the 
encrypted payload and the header, and forwards the d e crypt e d encrypted 
payload and the header to the server; 

wherein the server utilizes the decrypted first session key to decrypt the 
encrypted payload . 

1 1 . (currently amended) The method of claim 10 , furth e r compr i s i ng: 

r e c ei v i ng th e e ncrypt e d data pack e t at th e gat e way; 

d e crypt i ng th e e ncrypt e d data pack e t at th e gat e way to r e cov e r a 
d e crypt e d data pack e t compr i s i ng th e e ncrypt e d pay l oad e ncrypt e d w i th th e f i rst 
s e ss i on k e y; 

forward i ng th e d e crypt e d data pack e t to th e s e rv e r ov e r th e w i d e ar e a 



network' 



d e crypt i ng th e e ncrypt e d f i rst s < 



k e y at th e 



; i ng a pr i vat e 
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k e y; and 

d e crypt i ng th e e ncrypt e d pay l oad at th e s e rv e r us i ng th e d e crypt e d f i rst 
s e ss i on k e y- 
wherein the decrypting the encrypted first session key at the server further 
comprises: 

decrypting the encrypted first session key at the server using a private key 
associated with the public key. 

12-14. (canceled). 

15. (original) The method of claim 10, wherein the payload includes 
location information. 

16. (currently amended) The method of claim 1 0, wh e r ei n th e further 
comprising: 

generating the[[a]] first session key at the mobile device furth e r compr i s e s 
g e n e rat i ng th e f i rst s e ss i on k e y based on a random number. 

17. (currently amended) The method of claim 10, wherein the 
encrypting the[[a]] payload at the mobile device using the first session key further 
comprises: 

encrypting the payload at the mobile device using the first session key, 
wherein the first session key employs an encryption algorithm selected from a 
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group of at le ast on e of th e encryption algorithms consisting of DESX and [fori! 
DES. 

18-19. (canceled). 

20. (currently amended) The method of claim 1 , wh e r ei n further 
comprising: 

implementing an encryption algorithm selected from a group of encryption 
algorithms consisting of th e f i rst s e ss i on k e y i mp le m e nts at le ast on e of th e 
e ncrypt i on a l gor i thms DESX andrforll DES. 

21 -24. (canceled). 

25. (previously presented) The method of claim 1 , wherein the data 
packet includes location information. 

26. (currently amended) The method of claim 1 , further comprising: 
utilizing a random number to generate the first key. 

A, wh e r ei n th e f i rst s e ss i on k e y i s g e n e rat e d bas e d on a random numb e r. 

27. (currently amended) The device of claim 6, further comprising: 

a memory coupled to the encryption engine, wherein the memory hav i ng a 
pub li c k e y assoc i at e d w i th a s e rv e r on th e w i d e ar e a n e twork stor e d th e r ei n 
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stores the second key, and wherein the encryption engine accesses the second 



key from the memory . 



28. (canceled). 

29. (currently amended) A computer readable medium[[,]] comprising 
program instructions for performing a method comprising: 

encrypting a payload according to a first s e ss i on key; 

adding a header to the encrypted payload to form a data packet; 

encrypting the first s e ss i on key according to a second key ; 

encrypting the data packet according to a third s e cond s e ss i on key 
configured for secured communications over a wireless link; 

transmitting the encrypted first s e ss i on key to a server; and 

transmitting the encrypted data packet over the[[a]] wireless link to a 
gateway , wherein the gatewav ffwhichll decrypts the encrypted data packetjo 
recreate , r e cr e at e s the encrypted payload and the header, and forwards the 
encrypted payload and the header ov e r an op e n n e twork to the serve r, and 
wherein the server ffwhichll decrypts the encrypted first s e ss i on key and decrypts 
the encrypted payload using the decrypted first s e ss i on key. 

30. (currently amended) The computer readable medium of claim 29, 
wherein the first s e ss i on key comprises ffusesll a symmetric key. 
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31 . (currently amended) The computer readable medium of claim 29, 
wherein the method furthe r compr i s i ng comprises : 

receiving the data packet at the gateway; 

decrypting the data packet at the gateway according to the third s e cond 

O0OO |qP |^0y- 

forwarding the encrypted payload to the server; 

receiving the encrypted first s e ss i on key at the server; 

decrypting the encrypted first s e ss i on key using a fourth p rivate-key; and 

decrypting the payload according to the decrypted f irst s e ss i on key. 

32. (currently amended) The computer readable medium of claim 29, 
wherein the first s e ss i on key comprises ffusesll a symmetric session key. 

33. (currently amended) The computer readable medium of claim 29, 
wherein the method further f i rst s e ss i on k e y comprises: 

implementing an encryption algorithm selected from a group of at4east 
on e of th e encryption algorithms consisting of DESX and[[or]] DES. 

34. (previously presented) The computer readable medium of claim 
29, wherein the data packet includes location information. 

35. (previously presented) The computer readable medium of claim 
32, wherein the symmetric session key is generated based on a random number. 
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